// Copyright 2014 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef COMPONENTS_OWNERSHIP_OWNER_SETTINGS_SERVICE_H_
#define COMPONENTS_OWNERSHIP_OWNER_SETTINGS_SERVICE_H_
#include <memory>
#include <string>
#include <vector>
#include "base/feature_list.h"
#include "base/functional/callback_forward.h"
#include "base/memory/ref_counted.h"
#include "base/memory/weak_ptr.h"
#include "base/observer_list.h"
#include "base/threading/thread_checker.h"
#include "components/keyed_service/core/keyed_service.h"
#include "components/ownership/ownership_export.h"
#include "components/policy/proto/device_management_backend.pb.h"
namespace base {
class TaskRunner;
class Value;
} // namespace base
namespace ownership {
class OwnerKeyUtil;
class PrivateKey;
class PublicKey;
OWNERSHIP_EXPORT
BASE_DECLARE_FEATURE(kOwnerSettingsWithSha256);
// This class is a common interface for platform-specific classes
// which deal with ownership, keypairs and owner-related settings.
class OWNERSHIP_EXPORT OwnerSettingsService : public KeyedService {
public:
class Observer {
public:
virtual ~Observer() {}
// Called when signed policy was stored, or when an error happed during
// policy storage..
virtual void OnSignedPolicyStored(bool success) {}
// Called when tentative changes were made to policy, but the
// policy is not signed and stored yet.
//
// TODO (ygorshenin@, crbug.com/230018): get rid of the method
// since it creates DeviceSettingsService's dependency on
// OwnerSettingsService.
virtual void OnTentativeChangesInPolicy(
const enterprise_management::PolicyData& policy_data) {}
};
typedef base::OnceCallback<void(
scoped_refptr<ownership::PublicKey>,
std::unique_ptr<enterprise_management::PolicyFetchResponse>)>
AssembleAndSignPolicyAsyncCallback;
using IsOwnerCallback = base::OnceCallback<void(bool is_owner)>;
explicit OwnerSettingsService(
const scoped_refptr<ownership::OwnerKeyUtil>& owner_key_util);
OwnerSettingsService(const OwnerSettingsService&) = delete;
OwnerSettingsService& operator=(const OwnerSettingsService&) = delete;
~OwnerSettingsService() override;
base::WeakPtr<OwnerSettingsService> as_weak_ptr() {
return weak_factory_.GetWeakPtr();
}
void AddObserver(Observer* observer);
void RemoveObserver(Observer* observer);
// Returns whether this OwnerSettingsService has finished loading keys, and so
// we are able to confirm whether the current user is the owner or not.
virtual bool IsReady();
// Returns whether current user is owner or not - as long as IsReady()
// returns true. When IsReady() is false, we don't yet know if the current
// user is the owner or not. In that case this method returns false.
virtual bool IsOwner();
// Determines whether current user is owner or not, responds via |callback|.
// Reliably returns the correct value, but will not respond on the callback
// until IsReady() returns true.
virtual void IsOwnerAsync(IsOwnerCallback callback);
// Assembles and signs |policy| on the |task_runner|, responds on
// the original thread via |callback|.
bool AssembleAndSignPolicyAsync(
base::TaskRunner* task_runner,
std::unique_ptr<enterprise_management::PolicyData> policy,
AssembleAndSignPolicyAsyncCallback callback);
// Checks whether |setting| is handled by OwnerSettingsService.
virtual bool HandlesSetting(const std::string& setting) = 0;
// Sets |setting| value to |value|.
virtual bool Set(const std::string& setting, const base::Value& value) = 0;
// Convenience functions for manipulating lists. Note that the following
// functions employs a read, modify and write pattern. If there're
// pending updates to |setting|, value cache they read from might not
// be fresh and multiple calls to those function would lose data.
virtual bool AppendToList(const std::string& setting,
const base::Value& value) = 0;
virtual bool RemoveFromList(const std::string& setting,
const base::Value& value) = 0;
// Sets a bunch of device settings accumulated before ownership gets
// established.
//
// TODO (ygorshenin@, crbug.com/230018): that this is a temporary
// solution and should be removed.
virtual bool CommitTentativeDeviceSettings(
std::unique_ptr<enterprise_management::PolicyData> policy) = 0;
bool SetBoolean(const std::string& setting, bool value);
bool SetInteger(const std::string& setting, int value);
bool SetDouble(const std::string& setting, double value);
bool SetString(const std::string& setting, const std::string& value);
// Run callbacks in test setting. Mocks ownership when full device setup is
// not needed.
void RunPendingIsOwnerCallbacksForTesting(bool is_owner);
protected:
void ReloadKeypair();
// Stores the provided keys. Ensures that |public_key_| and |private_key_| are
// not null (even if the key objects themself are empty) to indicate that the
// key loading finished.
void OnKeypairLoaded(scoped_refptr<PublicKey> public_key,
scoped_refptr<PrivateKey> private_key);
// Platform-specific keypair loading algorithm.
virtual void ReloadKeypairImpl(
base::OnceCallback<void(scoped_refptr<PublicKey> public_key,
scoped_refptr<PrivateKey> private_key)>
callback) = 0;
// Plafrom-specific actions which should be performed when keypair is loaded.
virtual void OnPostKeypairLoadedActions() = 0;
scoped_refptr<ownership::PublicKey> public_key_;
scoped_refptr<ownership::PrivateKey> private_key_;
scoped_refptr<ownership::OwnerKeyUtil> owner_key_util_;
std::vector<IsOwnerCallback> pending_is_owner_callbacks_;
base::ObserverList<Observer>::Unchecked observers_;
base::ThreadChecker thread_checker_;
private:
base::WeakPtrFactory<OwnerSettingsService> weak_factory_{this};
};
} // namespace ownership
#endif // COMPONENTS_OWNERSHIP_OWNER_SETTINGS_SERVICE_H_
Codebase Browser
chromium